{
  "threat_severity" : "Moderate",
  "public_date" : "2020-01-04T00:00:00Z",
  "bugzilla" : {
    "description" : "opensc: Double free in coolkey_free_private_data in libopensc/card-coolkey.c",
    "id" : "1837946",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1837946"
  },
  "cvss3" : {
    "cvss3_base_score" : "6.4",
    "cvss3_scoring_vector" : "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
    "status" : "verified"
  },
  "cwe" : "CWE-416",
  "details" : [ "OpenSC before 0.20.0 has a double free in coolkey_free_private_data because coolkey_add_object in libopensc/card-coolkey.c lacks a uniqueness check.", "A use-after-free vulnerability was discovered in OpenSC while disconnecting a smart card. This flaw allows a physical attacker to exploit this vulnerability by inserting and removing a malicious smart card, handled by the coolkey driver, that could potentially execute code on the target system, with privileges that depend on the particular configuration and system that makes use of the OpenSC library." ],
  "affected_release" : [ {
    "product_name" : "Red Hat Enterprise Linux 8",
    "release_date" : "2020-11-04T00:00:00Z",
    "advisory" : "RHSA-2020:4483",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8",
    "package" : "opensc-0:0.20.0-2.el8"
  } ],
  "package_state" : [ {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Not affected",
    "package_name" : "opensc",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2019-20792\nhttps://nvd.nist.gov/vuln/detail/CVE-2019-20792" ],
  "name" : "CVE-2019-20792",
  "mitigation" : {
    "value" : "If the coolkey driver is not necessary for the configuration and system in use, it is possible to disable it by not listing it in the /etc/opensc.conf file.\nFor example:\n```\napp default {\ncard_drivers = cac, cac1, PIV-II;\n}\n```",
    "lang" : "en:us"
  },
  "csaw" : false
}